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This appeal is from the decision of the Primary Examiner dated 04/05/2004, finally 
rejecting claims 1-17, which are reproduced as an Appendix to this brief. 



The Commissioner is authorized to charge the fee of $320, and any other fees that 
may be required by this paper, to Deposit Account No. 14-1270. 



PAGE 2/40 * RCVD AT 8/18/2004 1:49:04 PM [Eastern Daylight Time] * SVR:USPT0-EFXRF-1/4 * DNIS:8729306 * CSID:408 4749082 * DURATION (mm-ss):07-46 



08/18/2004 10:54 408-4749082 



PSUG CIP 



PAGE 03/40 



PATENT 

Attorney's Docket No- USOO 8002 
Page 2 

(1) Real Party in Interest 

The real party In interest is the assignee, Koninklijke Philips Electronics, N.V. 

(2) Related Appeals or Interferences 

Applicant i$ not aware of any related appeals or interferences. 

(3) Status of Claims 

Claims 1-17 remain pending in the present application. All claims have been 
finally rejected and all claims are on appeal. 

(4) Status of Amendments 

AU amendments have been entered, No amendment after final has been submitted- 

(5) Summary of the Invention 

The present invention may best be appreciated in relation to the field of consumer 
electronics. This field is very device-cost- sensitive. Furthermore, many such devices handle 
media content where the availability of media content may be a function of aoti-piracy mea- 
sures implemented to protect such media content. Finally, connectivity is an important 
attribute of such devices. Cryptographic functions important to media content protection such 
as key exchange, digital signature and digital signature verification are computation-intensive 
and require substantial processing power, power that is often unavailable to a consumer elec- 
tronics device. To address this situation, according to one aspect of the present invention such 
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functions are provided for in a link-layer access device, such as a 1394 ("Firewire") Irnk-layer 
access device (Figure 1 ? element 200; Figure 2), for example. A consumer electronics device 
will often incorporate such a link-layer access device. In this manner, media content protection 
may be achieved while maintaining low device cost, also while impacting device architecture 
to a minimal degree, 

(6) The References 

The primary reference relied upon in rejecting the claims is Abraham, U.S. Patent 
5,148,481 . The system of Abraham is characteristic of the prior art described in the present 
specification. Note that key exchange, digital signature and authentication are performed in 
software (not in hardware as the term device connotes) on a PC. In particular, these functions 
are performed by the security server program 1 1 7 of Abraham (col. 7, lines 30-40; Fig. 5). The 
results of these functions are communicated to the cryptographic module 31 of the crypto- 
graphic adapter hardware 29, e.g., in order for it to perform channel encryption/decryption. 

A secondary reference, Sutikno, is combined with Abraham in rejecting various 
ones of the dependent claims. Sutikno describes an arithmetic coprocessor for performing 
elliptic curve cryptography. The coprocessor implements instructions (multiply, field inver- 
sion, addition, input, output, rotate, copy, set) summarized in the second column of page 649 of 
Sutikno. 

(7) The Rejection 

In the Final Rejection of October 23 s 2002, claims 1-3, 5, 7 and 12 were rejected as 
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being anticipated by Abraham. Claims 4, 6, 8, 1 1, 15 and 1 7 were rejected a$ being unpatent- 
able over Abraham m view of Sutikno* From paragraph 1 7 of the Final Office Action, is would 
appear that the remaining claims (claims 9, 10, 13, 14 and 16) were also rejected as being 
unpatentable over Abraham in view of Sutikno, 

(S) Issue 

The issues presented are: 1 , Whether claims 1-3,5, 7 and 12 are anticipated by 
Abraham; and 2. Whether the remaining claims would have been obvious in view of Abraham. 



(9) Argument 

The security server program 1 1 7 of Abraham cannot be equated to the link-layer access 
device of claim 1. 

Nor can the cryptographic adapter 29 of Abraham be equated to the lick-layer access 
device of claim 1 . Although the cryptographic adapter does perform encryption/decryption, it 
does not "provide, in response to one or more commands from the node controller, one or more 
cryptographic items based on one or more parameters from the node controller." 

Applicant notes that in the rejection of claim 1, the link-layer access device is identified 
first as element 61 of Abraham (RS232 interface) and later as element 25 of Abraham 
(workstation). Element 61 cannot be read as the link-layer access device of claim 1 because it 
does not perform the recited functions of the link-layer access device of claim 1 . Element 25 
cannot be read as the link-layer access device of claim 1 because, if it does perform the recited 
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functions, performs them in software in like manner as the prior art, and not using a link-layer 
access device as claimed in claim 1 . : 

Hence claims 1 and its dependent claims arc believed to patentably distinguish over the 
cited references. 

Claim 12 recites the corresponding method as claim 1 and, with its dependent claims, is 
believed to be patentable for similar reasons. 

Claim 7, claiming a link-layer access device, and its dependent claims ate believed to 
be patentable for similar reasons as claims 1 and 1 2, It is unreasonable to take the position that, 
because the PC system of Abraham may! contain a link-layer access device, that the PC system 
is a link-layer access device. It is likewise unreasonable to take the position that any element 
within the PC system that performs a similar function as a function recited in the claim 
therefore satisfies that element. ; 

Dependent claims 2-6, 8-1 1 and!13-17 are also believed to add novel and patentable 
subject matter to their respective dependent claims. 

Claims 2, 3, 9, 10 ? 13 and 14 relate to particular cryptographic items provided by the 
link-access device in response to commands from the node controller. Neither Abraham nor 
Sutifaao makes particular mention of these cryptographic items. 

Claims 6, 1 1 and 17 relate to a particular set of commands issued by the node 
controller, including commands not made particular mention of in either Abraham or Sutikno. 

Claim 4, 8 and 1 5 relate to deriving a second point on a elliptic curve from a first point 
on the elliptic curve and are applicable, |for example, to Diffie-Hellman key exchange as 

described on page 6 of the specification!. Such key exchange per se is well-known. Ho wever, 

i 

! 

i 
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the combination of such features within the context of the independent claims is not believed to 
be taught or suggested by the cited references. 

Claims 5 and 16 explicitly address key exchange. Once again, the combination of such 
features within the context of the independent claims is not believed to be taught or suggested 
by the cited references. 
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(10) CONCLUSION 



For the foregoing reasons, claims 1-17 are believed to patentably define over the 
cited references. 



Applicant respectfully submits therefore that the Final Rejection should be 
REVERSED. 



Respectfully submitted;, 




MicEaef J, Ure 
Attorney for Aj^jflicant 
Regi$tratk>nNo. 33,089 



Date: August 18, 2004 
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APPENDIX OF CLAIMS 

1 , A processing system comprising: 

an application device that is configured to communicate information with a physical- 
layer access device via a link-layer access device, 

a node controller that is configured to control the link-layer access device, 

the link-layer access device, operably coupled to the application device, the node 
controller, and the physical-layer access device, that is configured to facilitate an exchange of 
the information from and to the application device with data that is communicated to and from 
the physical-layer access device; 

wherein,, 

the link-layer access device is further configured to provide, in response to one or more 
commands from the node controller, one or more cryptographic items based on one or more 
parameters from the node controller. 

2, The processing system of claim 1, wherein 

the one or more cryptographic items include at least one of: 
a digital signature, 

a verification of a digital signature, and 
a cryptographic key item. 

3, The processing system of claim 1, wherein 

the one or more cryptographic items include: 
a digital signaturej 

a verification of a digital signature, and 
a cryptographic key item. 
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4. The processing system of claim 1, wherein 

the link-layer access device includes a multiplication device that is configured to derive 
a second point on an elliptic curve from a first point on the elliptic curve, based on the one or 
more of the parameters from the node controller. 

5. The processing system of claim 1> wherein 

the node controller is configured to effect an exchange of a cryptographic key with an 
other processing system, and 

the one or more cryptographic items from the link-layer access device includes the 
cryptographic key . 

6. The processing system of claim 1 ? wherein 

the commands from the node controller include: a basepoint multiply command, a 
point multiply command, an EC-DSA verify command, and an EC-DSA sign command. 
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7 T A link-layer access device comprising: 

an application-layer interface device that is configured to communicate information 
with an application-layer device, 

a physical-layer interface device that is configured to communicate data with a 
physical-layer device, 

a buffer device, operably coupled to the application-layer interface device and the 
physical-layer interface device, that is configured to facilitate an exchange of the information 
of the application-layer device and the data of the physical-layer device, 

a controller interface device, operably coupled to the application-layer interface device 
and the physical-layer interface device, that is configured to facilitate control of the exchange 
of information and data, and 

an accelerator, operably coupled to a controller via the controller interface device, that 
is configured to compute one or more cryptographic items, in response to one or more 
cryptographic commands from the controller, and to thereafter communicate the one or more 
cryptographic items to the controller. 

8. The link-layer access device of claim 7, wherein 

the accelerator includes a multiplication device that is configured to derive a second 
point on an elliptic curve from a first point on the elliptic curve, based on one or more of 
parameters provided by the controller. 

9. The link-layer access device of claim 7 ? wherein 

the one or more cryptographic items includes at least one of: 
a signature of a message, 
a verification of a digital signature, 
a hash of one or more parameter s 5 
a random number, 

an exponentiation of one or more parameters, and 
an elliptic curve multiplication of one or more parameters, 
, the one or more parameters being provided by the controller. 
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1 0. The link-layer access device of claim 7, wherein 

the one or more cryptographic items include: 
a signature of a message, 
a verification of a digital signature, and 
an elliptic curve multiplication of one or more parameters, 

the one or more parameters being provided by the controller. 

1 1 . The link-layer access device of claim 7 S wherein 

the one or more cryptographic commands include: a basepoint multiply command, a 
point multiply command, an EC-DS A Verify command, and an EC-DSA sign command. 
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12. A method for communications comprising: 

communicating information from and to an application device? to and from a physical- 
layer access device via a link-layer access device, 

controlling the link-layer access device, in dependence upon commands from a node 
controller, 

effecting an exchange of the information from and to the application device witia data 
that is communicated to and from the physical-layer access device, and 

determining one or more cryptographic items via computations within the link-layer 
access device, based on one or more parameters that are provided to the link-layer access 
device by the node controller. 

13. The method of claim 12 s wherein 

the one or more cryptographic items include at least one of: 
a digital signature, 

a verification of a digital signature, and 
a cryptographic key item. 

14. The method of claim 12, wherein 

the one or more cryptographic items include: 
a digital signature, 

a verification of a digital signature, and 
a cryptographic key item, 
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15- The method of claim 12, wherein 

determining the one or more cryptographic items includes 

deriving a second point on an elliptic curve from a first point on the elliptic 
curve, based on the one or more of the parameters from the node controller. 



16. The method of claim 12, further including 

effecting an exchange of a cryptographic key with an other processing system, wherein 
the one or more cryptographic items from the link-layer access device includes the 
cryptographic key. 

17, The method of claim 12, wherein 

the commands from the node controller include: a basepoint multiply command, a 
point multiply command, an EC-DSA verify command, and an EC-DSA sign command. 
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GEORGE FLEMING 



Application No.: 09/517,884 



Filed: 03/03/2000 



For: IEEE 1394 LINK LAYER CHIP 
WITH "5C" AUTHENTICATION 
AND KEY EXCHANGE ACCELER- 
ATOR 



Group Art Unit: 2134 



Examiner: ZIA, MOSSADEQ 



Appeal No. f 



ANTRAL FAX CENTER 

AUG 1 ; 



BRIEF FOR APPELLANT 

BOX APPEAL BRIEF 
Commissioner for Patents 
P.O. Box 1450 
Alexandria, VA 223 1 3-1 450 

Sir: 

This appeal is from the decision of the Primary Examiner dated 04/05/2004, finally 
rejecting claims 1™17, which are reproduced as an Appendix to this brief. 



The Commissioner is authorized to charge the fee of $320, and any other fees that 
may be required by this paper, to Deposit Account No. 14-1270. 
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(1) Real Party in Interest 

The real party in interest is the assignee, Koniriklijke Philips Electronics, N.V. 

(2) Related Appeals or Interferences 

Applicant is not aware of any related appeals or interferences. 

(3) Status of Claims 

Claims 1-17 remain pending in the present application. All claims have been 
finally rejected and all claims are on appeal. 

(4) Status of Amendments 

All amendments have been entered. No amendment after final has been submitted. 

(5) Summary of the Invention 

The present invention may best be appreciated in relation to the field of consumer 
electronics. This field is very device-cost-sensitive. Furthermore, many such devices handle 
media content where the availability of media content may be a function of anti-piracy mea- 
sures implemented to protect such media content Finally, connectivity is an important 
attribute of such devices. Cryptographic functions important to media content protection such 
as key exchange, digital signature and digital signature verification are computation-intensive 
and require substantial processing power, power that is often unavailable to a consumer elec- 
tronics device. To address this situation, according to one aspect of the present invention^ such 
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functions are provided for in a link-layer access device, such as a 1394 ("Firewire") link-layer 
access device (Figure 1 ? element 200; Figure 2), for example, A consumer electronics device 
will often incorporate such a link-layer access device. In this manner, media content protection 
may be achieved while maintaining low device cost ? also while impacting device architecture 
to a minimal degree. 

(6) The References 

The primary reference relied upon in rejecting the claims is Abraham, U.S. Patent 
5,148,481 . The system of Abraham is characteristic of the prior art described in the present 
specification. Note that key exchange, digital signature and authentication are performed in 
software (not in hardware as the term device connotes) on a PC. In particular, these functions 
are performed by the security server program 117 of Abraham (col. 7, lines 30-40; Fig. 5). The 
results of these functions are communicated to the cryptographic module 3 1 of the crypto- 
graphic adapter hardware 29, e.g., in order for it to perform channel encryption/decryption. 

A secondary reference, Sutikno, is combined with Abraham in rejecting various 
ones of the dependent claims. Sutikno describes an arithmetic coprocessor for performing 
elliptic curve cryptography. The coprocessor implements instructions (multiply, field inver- 
sion^ addition, input, output, rotate, copy, set) summarized in die second column of page 649 of 
Sutikno- 

(7) The Rejection 

In the Final Rejection of October 23, 2002, claims 1-3^ 5, 7 and 12 were rejected a$ 
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being anticipated by Abraham. Claims 4, 6, 8, 1 1, 15 and 17 were rejected as being unpatent- 
able over Abraham in view of Sutikno. From paragraph 17 of the Final Office Action, is would 
appear that the remaining claims (claims 9, 10, 13, 14 and 16) were also rejected as being 
unpatentable over Abraham in view of Sutikno, 

(8) Issue 

The issues presented are: 1 . Whether claims l-3,5 ? 7 and 1 2 are anticipated by 
Abraham; and 2. Whether the remaining claims would have been obvious in view of Abraham. 



(9) Argument 

The security server program 117 of Abraham cannot be equated to the link-layer access 
device of claim 1 . 

Nor can the cryptographic adapter 29 of Abraham be equated to the link-layer access 
device of claim 1, Although the cryptographic adapter doe$ perform encryption/decryption, it 
does not "provide, in response to one or more commands from the node controller, one or more 
cryptographic items based on one or more parameters from the node controller." 

Applicant notes that in the rejection of claim 1, the link-layer access device is identified 
first as element 61 of Abraham (RS232 interface) and later as element 25 of Abraham 
(workstation). Element 61 cannot be read as the link-layer access device of claim 1 because it 
does not perform the recited functions of the link-layer access device of claim 1, Element 25 
cannot be read as the link-layer access device of claim 1 because, if it does perform the recited 
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function^ performs them in software in like manner as the prior art, and not vising a link-layer 
access device as claimed in claim 1 , 

Hence claims 1 and its dependent claims are believed to patentably distinguish over the 
cited references. 

Claim 12 recites the corresponding method as claim 1 and, with its dependent claims, is 
believed to be patentable for similar reasons- 
Claim 7, claiming a link-layer access device^ and its dependent claims axe believed to 
be patentable for similar reasons as claims 1 and 12. It is unreasonable to take the position that, 
because the PC system of Abraham may contain a link-layer access device, that the PC system 
is a link-layer access device. It is likewise unreasonable to take the position that any element 
within the PC system that performs a similar function as a function recited in the claim 
therefore satisfies that element. 

Dependent claims 2-6, 8-1 1 and 13-17 are also believed to add novel and patentable 
subject matter to their respective dependent claims. 

Claim3 2, 3, 9, 10, 13 and 14 relate to particular cryptographic items provided by the 
link-access device in response to commands from the node controller. Neither Abraham nor 
Sutikno makes particular mention of these cryptographic items. 

Claims 6 7 1 1 and 17 relate to a particular set of commands issued by the node 
controller, including commands not made particular mention of in either Abraham or Sutikno. 

Claim 4, 8 and 1 5 relate to deriving a second point on a elliptic curve from a first point 
on the elliptic curve and are applicable, for example, to DifiSe-Hellman key exchange as 
described on page 6 of the specification. Such key exchange per se is well-known. However, 
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the combination of such features within the context of the independent claims is not believed to 
be taught or suggested by the cited references* 

Claims 5 and 16 explicitly address key exchange. Once again, the combination of such 
features within the context of the independent claims is not believed to be taught or suggested 
by the cited references . 
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(10) CONCLUSION 

For the foregoing reasons, claims 1-17 axe believed to patentably define over the 
cited references. 

Applicant respectfully submits therefore that the Final Rejection should be 
REVERSED. 
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APPENDIX OF CLAIMS 

1. A processing system comprising: 

an application device that is configured to communicate information with a physical- 
layer access device via a link-layer access device, 

a node controller that is configured to control the link-layer access device, 

the link-layer access device, operably coupled to the application device, the node 
controller, and the physical-layer access device, that is configured to facilitate an exchange of 
the information from and to the application device with data that is communicated to and from 
the physical-layer access device; 

wherein, 

the link-layer access device is further configured to provide, in response to one or more 
commands from the node controller, one or more cryptographic items based on one or more 
parameters from the node controller. 

2. The processing system of claim 1, wherein 

the one or more cryptographic items include at least one of: 
a digital signature, 

a verification of a digital signature, and 
a cryptographic key item. 

3. The processing system of claim 1, wherein 

the one or more cryptographic items include: 
a digital signature, 

a verification of a digital signature, and 
a cryptographic key item. 
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4. The processing system of claim 1, wherein 

the link-layer access device includes a multiplication, device that is configured to derive 
a second point on an elliptic curve from a first point on the elliptic curve, based on the one or 
more of the parameters from the node controller. 

5. The processing system of claim 1, wherein 

the node controller is configured to effect an exchange of a cryptographic key with an 
other processing system, and 

the one ox more cryptographic items from the link-layer access device includes the 
cryptographic key. 

6. The processing system of claim 1, wherein 

the commands from the node controller include: a basepoint multiply command, a 
point multiply command, an EC-DSA verify command, and an EC-DSA sign command. 
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7r A link-layer access device comprising: 

an application-layer interface device that is configured to communicate information 
with an application-layer device, 

a physical-layer interface device that is configured to communicate data with a 
physical- layer device, 

a buffer device, operably coupled to the application-layer interface device and the 
physical-layer interface device, that is configured to facilitate an exchange of the information 
of the application-layer device and the data of the physical-layer device, 

a controller interface device, operably coupled to the application-layer interface device 
and fee physical-layer interface device,, that is configured to facilitate control of the exchange 
of information and data, and 

an accelerator, operably coupled to a controller via the controller interface device, that 
is configured to compute one or more cryptographic items, in response to one or more 
cryptographic commands from the controller, and to thereafter communicate the one or more 
cryptographic items to the controller. 

8. The link-layer access device of claim 7 5 wherein 

the accelerator includes a multiplication device that is configured to derive a second 
point on an elliptic curve from a first point on the elliptic curve, based on one or more of 
parameters provided by the controller. 

9, The link-layer access device of claim 7 ? wherein 

the one or more cryptographic items includes at least one of: 
a signature of a message, 
a verification of a digital signature, 
a hash of one or more parameters, 
a random number, 

an exponentiation of one or more parameters, and 
an elliptic curve multiplication of one or more parameters, 
the one or more parameters being provided by the controller. 
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10. The link-layer access device of claim 7 a wherein 

the one or more cryptographic items include: 
a signature of a message^ 
a verification of a digital signature, and 
an elliptic curve multiplication of Otte or more parameters, 

the one or more parameters being provided by the controller 

1 1. The link-layer access device of claim 7, wherein 

the one or more cryptographic commands include: a basepoint multiply command, a 
point multiply command, an EC-DSA Verify command, and an EC-DS A sign command. 
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12. A method for communications comprising: 

communicating information from and to an application device to and from a physical- 
layer access device via a link-layer access device, 

controlling the link-layer access device, in dependence upon commands from a node 
controller, 

effecting an exchange of the information from and to the application device with data 
that is communicated to and from the physical-layer access device, and 

determining one or more cryptographic items via computations within the link-layer 
access device, based on one or more parameters that are provided to the link-layer access 
device by the node controller. 

13. The method of claim 12, wherein 

the one or more cryptographic items include at least one of; 
a digital signature, 

a verification of a digital signature, and 
a cryptographic key item. 

14. The method of claim 12, wherein 

the one or more cryptographic items include: 
a digital signature, 

a verification of a digital signature, and 
a cryptographic key item. 
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15. The method of claim 1 2, wherein 

determining the one or more cryptographic items includes 

deriving a second point on an elliptic curve from a first point on the elliptic 
curve, based on the one or more of the parameters from the node controller. 

16. The method of claim 12, further including 

effecting an exchange of a cryptographic key with an other processing system, wherein 
the one or more cryptographic items from the link-layer access device includes the 
cryptographic key. 



17. The method of claim 12, wherein 

the commands from the node controller include: a basepoint multiply command, a 
point multiply command, an EC-DSA verify command, and an EC-DSA sign command. 
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BRIEF FOR APPELLANT 



BOX APPEAL BRIEF 
Commissioner for Patents 
P.O. Box 1450 
Alexandria, VA 22313-1450 

Sir: 



This appeal is from the decision of the Primary Examiner dated 04/05/2004, finally 
rejecting claims 1-17, which are reproduced as an Appendix to this brief. 



The Commissioner is authorized to charge the fee of $320, and any other fees that 
may be required by this paper, to Deposit Account No. 14-1270. 
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(1) Real Party in Interest 

The real party in interest is the assignee, Koninldijke Philips Electronics, N.V. 

(2) Related Appeals or Interferences 

Applicant is not aware of any related appeals or interferences, 

(3) Status of Claims 

Claims 1-17 remain pending in the present application. All claims have been 
finally rejected and all claims are on appeal. 

(4) Status of Amendments 

All amendments have been entered. No amendment after final has been submitted. 

(5) Summary of the Invention 

The present invention may best be appreciated in relation to the field of consumer 
electronics. This field is very device-cost-sensitive. Furthermore, many such devices handle 
media content where the availability of media content may be a function of anti-piracy mea- 
sures implemented to protect such media content. Finally, connectivity is an important 
attribute of such devices. Cryptographic functions important to media content protection such 
as key exchange, digital signature and digital signature verification are computation-intensive 
and require substantial processing power, power that is often unavailable to a consumer elec- 
tronics device. To address this situation, according to one aspect of the present invention, such 
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functions are provided for ia a link-layer access device, such as a 1394 ("Firewire") link-layer 
access device (Figure 1, element 200; Figure 2), for example. A consumer electronics device 
will often incorporate such a link-layer access device. In. this manner, media content protection 
may be achieved while maintaining low device cost, also while impacting device architecture 
to a minimal degree. 

(6) The References 

The primary reference relied upon in rejecting the claims is Abraham, U.S. Patent 
5,14S,48L The system of Abraham is characteristic of the prior art described in the present 
specification- Note that key exchange, digital signature and authentication are performed in 
software (not m hardware as the term device connotes) on a PC. In particular, these functions 
are performed by the security server program 1 17 of Abraham (coL 7, lines 30-40; Fig. 5). The 
results of these functions are communicated to the cryptographic module 31 of the crypto- 
graphic adapter hardware 29, e,g,, in order for it to perform channel encryption/decryption. 

A secondary reference, Sutikno, is combined with Abraham in rejecting various 
ones of the dependent claims. Sutikno describes an arithmetic coprocessor for performing 
elliptic curve cryptography. The coprocessor implements instructions (multiply, field inver- 
sion, addition* input, output, rotate, copy* set) summarized in the second column of page 649 of 
Sutikno. 

(7) The Rejection 

In the Final Rejection of October 23,2002, claims 1-3, 5 y 7 and 12 were rejected as 
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being anticipated by Abraham. Claims 4, 6 ? 8, 11 9 15 and 17 were rejected as being unpatent- 
able over Abraham in view of Sutikno, From paragraph 17 of the Final Office Action, is would 
appear that the remaining claims (claims 9, 10, 13, 14 and 16) were also rejected as being 
unpatentable over Abraham in view of Sutikno. 

(8) Issue 

The issues presented are; 1. Whether claims 1-3 S 5 ? 7 and 12 are anticipated by 
Abraham; and 2, Whether the remaining claims would have been obvious in view of Abraham. 



(9) Argument 

The security server program 1 17 of Abraham cannot be equated to the link-layer access 
device of claim 1 . 

Nor can the cryptographic adapter 29 of Abraham be equated to the link-layer access 
device of claim 1. Although the cryptographic adapter does perform encryption/decryption, it 
does not "provide, in response to one or more commands from the node controller, one or more 
cryptographic items based on one or more parameters from the node controller. >3 

Applicant notes that in the rejection of claim 1, the link-layer access device is identified 
first as element 6 1 of Abraham (RS232 interface) and later as element 25 of Abraham 
(workstation). Element 6 1 cannot be read as the link-layer access device of claim 1 because it 
does not perform the recited functions of the link-layer access device of claim 1 . Element 25 
cannot be read as the link-layer access device of claim 1 because, if it does perform the recited 
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functions, performs them in software in like manner as the prior art, and not using a link-layer 
access device as claimed in claim 1 . 

Hence claims 1 and its dependent claims are believed to patentably distinguish over the 
cited references. 

r 

Claim 12 recites the corresponding method as claim 1 and, with its dependent claims, is 
believed to be patentable for similar reasons. 

Claim 7, claiming a link-layer access device, and its dependent claims are believed to 
be patentable for similar reasons as claims 1 and 1 2. It is unreasonable to take the position that, 
because the PC system of Abraham may contain a link-layer access device, that the PC system 
jj a link-layer access device. It is likewise unreasonable to take the position that any element 
within the PC system that performs a similar function as a function recited in the claim 
therefore satisfies that element. 

Dependent claims 2-6, 8- 1 1 and 1 3-1 7 are also believed to add novel and patentable 
subject matter to their respective dependent claims. 

Claims 2, 3, 9, 10, 13 and 14 relate to particular cryptographic items provided by the 
link-access device in response to commands from the node controller. Neither Abraham nor 
Sutikno makes particular mention of these cryptographic items . 

Claims 6, 1 1 and 17 relate to a particular set of commands issued by the node 
controller, including commands not made particular mention of in either Abraham or Sutikno. 

Claim 4, 8 and 1 5 relate to deriving a second point on a elliptic curve from a first point 
on the elliptic curve and are applicable, for example, to Diffie-Hellman key exchange as 
described on page 6 of the specification. Such key exchange per se is well-known. However, 
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the combination of such features within the context of the independent claims i$ not believed to 
be taught or suggested by the cited references. 

Claims 5 and 1 6 explicitly address key exchange. Once again, the combiaation of such 
features within the context of the independent claims is not believed to be taught or suggested 
by the cited references. 
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(10) CONCLUSION 



For the foregoing reasons, claims 1-17 are believed to pateatably define over the 

cited references- 
Applicant respectfully submits therefore that the Final Rejection should be 

REVERSED. 

Respectfully submitted, 



^■L^- — 

Micfiaef J, Ure 
Attorney for A^licant 
Registration No, 33,089 



Date: August 18, 2004 
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APPENDIX OF CLAIMS 

1 . A processing system comprising: 

an application device that is configured to communicate information with a physical- 
layer access device via a link-layer access device, 

a node controller that is configured to control the link-layer access device, 

the link-layer access device, operably coupled to the application device, the node 
controller* and the physical-layer access device, that i$ configured to facilitate an exchange of 
the information from and to the application device with data that is communicated to and from 
the physical-layer access device; 

wherein, 

the link-layer access device is further configured to provide, in response to one or more 
commands from the node controller, one or more cryptographic items based on one or more 
parameters from the node controller. 

2. The processing system of claim 1 , wherein 

the one or more cryptographic items include at least one of: 
a digital signature, 

a verification of a digital signature, and 
a cryptographic key item, 

3. The processing system of claim U wherein 

the one or more cryptographic items include: 
a digital signature, 

a verification of a digital signature, and 
a cryptographic key item. 
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4. The processing system of claim I, -wherein 

the link-layer access device includes a multiplication device that is configured to derive 
a second point on an elliptic curve from a first point on the elliptic curve, based on the one or 
more of the parameters from the node controller, 

5. The processing system of claim 1 , wherein 

the node controller is configured to effect an exchange of a cryptographic key with an 
other processing system, and 

the one or more cryptographic items from the link-layer access device includes the 
cryptographic key. 

6. The processing system of claim 1, wherein 

the commands from the node controller include: a basepoint multiply command, a 
point multiply command, an EC-DSA verify command, and an EC-DSA sign command. 



PAGE 36/40 * RCVD AT 8/1812004 1:49:04 PM [Eastern Daylight Time] * SVR:USPT0-EFXRF-1/4 * DNIS:8729306 * CSID:408 4749082* DURATION (mm-ss):0746 



09/18/2004 10:54 408-4749082 



PSUC CIP 



PAGE 37/40 



PATENT 

Attorney's Docket No. USOO 8002 
Page 10 

7. A link-layer access device comprising: 

an application-layer interface device that is configured to communicate information 
with an application-layer device, 

a physical-layer interface device that is configured to communicate data with a 
physical-layer device, 

a buffer device, operably coupled to the application-layer interface device and the 
physical-layer interface device, that is configured to facilitate an exchange of the information 
of the application-layer device and the data of the physical-layer device, 

a controller interface device, operably coupled to the application-layer interface device 
and the physical-layer interface device^ that i$ configured to facilitate control of the exchange 
of information and data, and 

an accelerator, operably coupled to a controller via the controller interface device, that 
is configured to compute one or more cryptographic items, in response to one or more 
cryptographic commands from the controller, and to thereafter communicate the one or more 
cryptographic items to the controller. 

8. The link-layer access device of claim 7, wherein 

the accelerator includes a multiplication device that is configured to derive a second 
point on an elliptic curve from a first point on the elliptic curve, based on one or more of 
parameters provided by the controller. 

9. The link-layer access device of claim 7, wherein 

the one or more cryptographic items includes at least one of: 
a signature of a message, 
a verification of a digital signature, 
a hash of one or more parameters, 
a random number, 

an exponentiation of one or more parameters, and 
an elliptic curve multiplication of one or more parameters, 
the one or more parameters being provided by the controller. 
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10. The link-layer access device of claim 7, wherein 

the one or more cryptographic items include; 
a signature of a message, 
a verification of a digital signature, and 
an elliptic curve multiplication of one or more parameters, 

the one or more parameters being provided by the controller. 

H* The link-layer access device of claim 7, wherein 

the one or more cryptographic commands include: a basepoint multiply command, a 
point multiply command, an EC-DS A Verify command, and an EC-DSA sign command. 
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12. A method for communications comprising: 

communicating information from and to an application device to and from a physical- 
layer access device via a link-layer access device^ 

controlling the link-layer access device,, in dependence upon commands frotn a node 
controller, 

effecting an exchange of the information fiom and to the application device with data 
that is communicated to and from the physical-layer access device, and 

determining one or more cryptographic items via computations within the link-layer 
access device, based on one or more parameters that are provided to the link-layer access 
device by the node controller. 

13. The method of claim 12 } wherein 

the one or more cryptographic items include at least one of: 
a digital signature, 

a verification of a digital signature, and 
a cryptographic key item. 

14. The method of claim 12, wherein 

the one or more cryptographic items include: 
a digital signature, 

a verification of a digital signature, and 
a cryptographic key item. 
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1 5. The method of claim 12, wherein 

determining the one or more cryptographic items includes 

deriving a second point on an elliptic curve from a first point on the elliptic 
curve, based on the one or more of the parameter from the node controller. 

16. The method of claim 12, further including 

effecting an exchange of a cryptographic key with an other processing system, wherein 
the one or more cryptographic items from the link-layer access device includes the 
cryptographic key. 



17. The method of claim 12, wherein 

the commands from the node controller include: a basepoint multiply command, a 
point multiply command, an EC-DSA verify command, and an EC-DSA sign command. 
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